Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

457544 matches found

EUVD
EUVDadded 2026/06/17 12:47 p.m.6 views

EUVD-2026-37685

Unauthenticated PHP Object Injection in Alukas 3.0.0 versions...

8.1CVSS5.3AI score0.00395EPSS
Exploits0References1
EUVD
EUVDadded 2026/06/17 12:47 p.m.6 views

EUVD-2026-37684

Unauthenticated PHP Object Injection in PressMart = 1.2.26 versions...

8.1CVSS5.3AI score0.00308EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/17 12:47 p.m.14 views

CVE-2026-39442 WordPress PressMart theme <= 1.2.26 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in PressMart = 1.2.26 versions...

8.1CVSS0.00308EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/17 12:47 p.m.28 views

CVE-2025-69127 WordPress Plumbing theme <= 1.6 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Plumbing = 1.6 versions...

9.8CVSS0.00386EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/17 12:47 p.m.27 views

CVE-2025-69130 WordPress Entrepreneur - Booking for Small Businesses WordPress Theme theme <= 3.1.3 - PHP Object Injection vulnerability

Subscriber PHP Object Injection in Entrepreneur - Booking for Small Businesses WordPress Theme = 3.1.3 versions...

8.8CVSS0.00482EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/17 12:47 p.m.19 views

CVE-2025-69111 WordPress Reisen theme <= 1.4.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Reisen = 1.4.1 versions...

9.8CVSS0.00386EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/17 12:47 p.m.26 views

CVE-2025-59554 WordPress Advanced Ads – Tracking plugin < 3.0.7 - SQL Injection vulnerability

Unauthenticated SQL Injection in Advanced Ads – Tracking 3.0.7 versions...

9.3CVSS0.00383EPSS
Exploits0References1
Rockylinux
Rockylinuxadded 2026/06/17 12:3 p.m.6 views

hplip security update

An update is available for hplip. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The hplip packages contain the Hewlett-Packard Linux Imaging and Printing Proje...

9.8CVSS6.3AI score0.00739EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2026/06/17 10:54 a.m.6 views

dracut: dracut: Root code execution via DHCP options command injection

A flaw was found in dracut. A remote attacker on the adjacent network can exploit this vulnerability by providing specially crafted DHCP Dynamic Host Configuration Protocol options, such as a malicious hostname, to a system using dracut's legacy DHCP path. These options are improperly handled and...

7.5CVSS6AI score0.01131EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2026/06/17 10:54 a.m.12 views

Important: Red Hat Security Advisory: dracut security update

An update for dracut is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS5.9AI score0.01131EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2026/06/17 9:57 a.m.5 views

dracut: dracut: Root code execution via DHCP options command injection

A flaw was found in dracut. A remote attacker on the adjacent network can exploit this vulnerability by providing specially crafted DHCP Dynamic Host Configuration Protocol options, such as a malicious hostname, to a system using dracut's legacy DHCP path. These options are improperly handled and...

7.5CVSS6AI score0.01131EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/06/17 9:51 a.m.31 views

CVE-2026-54811 WordPress WP eMember plugin < v10.9.4 - SQL Injection vulnerability

Unauthenticated SQL Injection in WP eMember v10.9.4 versions...

9.3CVSS0.00291EPSS
Exploits0References1
CVE
CVEadded 2026/06/17 9:51 a.m.20 views

CVE-2026-54811

CVE-2026-54811 : Affected software is the WordPress WP eMember plugin versions older than 10.9.4. The issue is an unauthenticated SQL Injection in the plugin, allowing an attacker with network access (no user credentials, no UI interaction) to potentially read or exfiltrate data. The CVSS metrics...

9.3CVSS5.7AI score0.00291EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/17 9:51 a.m.32 views

CVE-2026-54806 WordPress WP Activity Log plugin <= 5.6.3.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in WP Activity Log = 5.6.3.1 versions...

9.8CVSS0.00588EPSS
Exploits1References1
CVE
CVEadded 2026/06/17 9:51 a.m.56 views

CVE-2026-54806

Affected software: WordPress WP Activity Log plugin (vulnerable &lt;= 5.6.3.1). Issue: unauthenticated PHP Object Injection. Root cause and technical specifics are not detailed in the provided documents beyond the vulnerability type. Impact metrics indicate a high-severity CVSS v3.1 score of 9.8 ...

9.8CVSS5.3AI score0.00588EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/06/17 9:51 a.m.31 views

CVE-2026-54186 WordPress JobSearch plugin <= 3.2.9 - SQL Injection vulnerability

Unauthenticated SQL Injection in JobSearch = 3.2.9 versions...

9.3CVSS0.00297EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/17 9:51 a.m.29 views

CVE-2026-54187 WordPress JetEngine plugin <= 3.8.10.1 - SQL Injection vulnerability

Unauthenticated SQL Injection in JetEngine = 3.8.10.1 versions...

9.3CVSS0.00291EPSS
Exploits0References1
CVE
CVEadded 2026/06/17 9:51 a.m.17 views

CVE-2026-54187

CVE-2026-54187 affects the WordPress JetEngine plugin, vulnerable in versions up to 3.8.10.1. The issue is an unauthenticated SQL injection in JetEngine = 3.8.10.2 or later and implement mitigations per vendor guidance. The documents do not indicate in-the-wild exploitation or CVSS vectors beyond...

9.3CVSS5.7AI score0.00291EPSS
Exploits0References1
CVE
CVEadded 2026/06/17 9:51 a.m.20 views

CVE-2026-54186

CVE-2026-54186 concerns the WordPress JobSearch plugin, affected version range

9.3CVSS5.7AI score0.00297EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/17 9:51 a.m.30 views

CVE-2026-54185 WordPress Cornerstone plugin < 7.8.8 - SQL Injection vulnerability

Subscriber SQL Injection in Cornerstone 7.8.8 versions...

8.5CVSS0.00342EPSS
Exploits0References1
Rows per page
Query Builder